[mod_python] Question about get_basic_auth_pw()

Bart scarfboy at gmail.com
Fri May 23 11:14:31 EDT 2008

2008/5/23  <Dominique.Holzwarth at ch.delarue.com>:
> Hi all
> Does anyone have an idea how the function "get_basic_auth_pw()" manages to
> decrypt the user password stored as MD5 inside the auth-file into its clear
> text version?
> I'm asking cause I maybe have to convert the MD5 passwords into the clear
> texts passwords myself and wondering how this is possible as normaly those
> passwords shouldn't be decryptable (i think) and authentication should be
> done by matching 2 MD5… =)

You may be thinking of Digest HTTP authentication.
Basic HTTP authentication sends passwords in (base64'd, IIRC) plain text.


More information about the Mod_python mailing list